Evince and security

I guess that sounds reasonable. Not sure if it would actually work or not.

For Evince it should done by isolating each backend, not only the PDF one (Poppler). The reason for using --filesystem=home is that AFAIU there is no other way to get access to neighbour files (for example, when using synctex).

This topic was automatically closed 14 days after the last reply. New replies are no longer allowed.